Weekly Intelligence Summary 17 Oct - 24 Oct 2019

In the spotlight this week: Russia-linked threat group “Turla” was reported to be using cyber-attack tools associated with Iran-linked threat group “APT34”, in conjunction with Turla’s own tools. Using tools from another state-linked group means Turla could conduct false-flag operations in the mid- to long-term future (3 months to beyond 12 months).

Weekly highlights include a campaign dubbed Operation Ghost being linked to “APT29”, targeting foreign-affairs entities in Europe; the “Winnti” threat group umbrella using a previously undocumented backdoor, known as skip-2.0; and the “Gustuff” banking trojan receiving an update.

Previous Video

Breach! Exploring the Modern Digital Breach: Part 1

It seems like we read about new breaches every day. What’s changing? How is exposure and the adoption of di...

Next Post

Avast Breach Attempt, NordVPN Breach, And Wifi Security Risks

The team first looks at Avast, which encountered a cyber espionage attempt. Then NordVPN announced that a h...